University of Florida notified over 5,500 patients (and parents of) after an employee working at the medical center may have compromised PHI and PII. The employee was discovered to have ties with an ID theft ring. The healthcare breach happened at the UF Pediatric Primary Care Clinic and involved minors, hence the parents being notified. The State Attorney and the IRS are both investigating the identity ring. The employee in question had access to PHI as part of his/her job – the University was unable to make certain that this information wasn’t misused.
“UF is notifying 5,682 patients and parents of patients at the UF Pediatric Primary Care Clinic at Tower Square, now known as UF Health Pediatrics ― Tower Square, that they should take appropriate measures to protect themselves from identity theft. UF is offering fraud resolution services for those who suspect or confirm identity theft associated with this incident; the fraud service offer is good for one year.
“We deeply regret what happened and share the frustration associated with this situation,” said Susan Blair, chief privacy officer for the University of Florida. “Protecting patient information is a top priority for us, and we are committed to finding new ways to identify and help prevent employee misconduct.”
To read the full article: Parents, patients notified of potential identity theft incident